Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-23 | CVE-2022-1033 | Unrestricted Upload of File with Dangerous Type vulnerability in Craterapp Crater Unrestricted Upload of File with Dangerous Type in GitHub repository crater-invoice/crater prior to 6.0.6. | 7.8 |
| 2022-03-22 | CVE-2022-1034 | Unrestricted Upload of File with Dangerous Type vulnerability in Showdoc There is a Unrestricted Upload of File vulnerability in ShowDoc v2.10.3 in GitHub repository star7th/showdoc prior to 2.10.4. | 7.2 |
| 2022-03-21 | CVE-2022-23346 | Unrestricted Upload of File with Dangerous Type vulnerability in Bigantsoft Bigant Server 5.6.06 BigAnt Software BigAnt Server v5.6.06 was discovered to contain incorrect access control issues. | 8.8 |
| 2022-03-21 | CVE-2022-0415 | Unrestricted Upload of File with Dangerous Type vulnerability in Gogs Remote Command Execution in uploading repository file in GitHub repository gogs/gogs prior to 0.12.6. | 8.8 |
| 2022-03-20 | CVE-2020-26007 | Unrestricted Upload of File with Dangerous Type vulnerability in Shopxo 1.9.0 An arbitrary file upload vulnerability in the upload payment plugin of ShopXO v1.9.0 allows attackers to execute arbitrary code via uploading a crafted PHP file. | 7.8 |
| 2022-03-20 | CVE-2020-26008 | Unrestricted Upload of File with Dangerous Type vulnerability in Shopxo 1.9.0 The PluginsUpload function in application/service/PluginsAdminService.php of ShopXO v1.9.0 contains an arbitrary file upload vulnerability which allows attackers to execute arbitrary code via uploading a crafted PHP file. | 7.8 |
| 2022-03-20 | CVE-2021-39384 | Unrestricted Upload of File with Dangerous Type vulnerability in Diaowen Dwsurvey 3.2.0 DWSurvey v3.2.0 was discovered to contain an arbitrary file write vulnerability via the component /utils/ToHtmlServlet.java. | 9.8 |
| 2022-03-18 | CVE-2022-25581 | Unrestricted Upload of File with Dangerous Type vulnerability in Classcms Classcms v2.5 and below contains an arbitrary file upload via the component \class\classupload. | 7.8 |
| 2022-03-18 | CVE-2022-25602 | Unrestricted Upload of File with Dangerous Type vulnerability in Expresstech Responsive Menu Nonce token leak vulnerability leading to arbitrary file upload, theme deletion, plugin settings change discovered in Responsive Menu WordPress plugin (versions <= 4.1.7). | 8.8 |
| 2022-03-18 | CVE-2021-45834 | Unrestricted Upload of File with Dangerous Type vulnerability in Opendocman 1.4.4 An attacker can upload or transfer files of dangerous types to the OpenDocMan 1.4.4 portal via add.php using MIME-bypass, which may be automatically processed within the product's environment or lead to arbitrary code execution. | 9.8 |